retired/CVE-2018-ebpf-filter-dos


1
2
3
4
5
6
7
8
9
10
11
12
13

Description: Ability to fill entire module space with eBPF JIT socket filters
References:
Notes:
 bwh> This should be minor for Debian because we don't enable JIT by default.
Bugs:
upstream: released (4.20-rc1) [ede95a63b5e84ddeea6b0c473b36ab8bfd8c6ce3]
4.19-upstream-stable: released (4.19.47) [43caa29c99db5a41b204e8ced01b00e151335ca8]
4.9-upstream-stable: released (4.9.190) [c98446e1bab6253ddce7144cc2a91c400a323839]
3.16-upstream-stable: N/A "eBPF not implemented"
sid: released (5.2.6-1)
4.19-buster-security: released (4.19.67-1)
4.9-stretch-security: released (4.9.210-1)
3.16-jessie-security: N/A "eBPF not implemented"